set interfaces ethernet {{ interface_lan }} address '{{ address_lan }}'
set interfaces ethernet {{ interface_lan }} description 'LAN'
set interfaces ethernet {{ interface_wan }} address '{{ address_wan }}'
set protocols static route 0.0.0.0/0 next-hop {{ gateway }}
set interfaces ethernet {{ interface_wan }} description 'WAN'
set nat source rule 100 outbound-interface name '{{ interface_wan }}'
set nat source rule 100 source address {{ subnet_lan }}
set nat source rule 100 translation address 'masquerade'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} default-router '{{ dhcp_gateway }}'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} domain-name '{{ dhcp_domain_name }}'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} lease '{{ dhcp_lease }}'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} name-server '{{ dhcp_name_server }}'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} range 0 start '{{ dhcp_start }}'
set service dhcp-server shared-network-name LAN subnet {{ subnet_lan }} range 0 stop '{{ dhcp_stop }}'
set service dns forwarding allow-from '{{ subnet_lan }}'
set service dns forwarding cache-size '0'
set service dns forwarding listen-address '{{ dns_forwarding_listen_address }}'
set service lldp
delete service ntp allow-client address '0.0.0.0/0'
delete service ntp allow-client address '::/0'
set service ntp server {{ ntp_server }}
delete service ntp server time1.vyos.net
delete service ntp server time2.vyos.net
delete service ntp server time3.vyos.net
set service ssh access-control allow user 'vyos'
set system host-name '{{ host_name }}'
set system name-server '{{ system_name_server }}'
set system time-zone '{{ system_time_zone }}'
